CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-24507

Cross Site Scripting vulnerability in Act-On 2023 allows a remote attacker to execute arbitrary code via the newUser parameter in the login.jsp component.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.2%

CVSS Severity

CVSS v3 Score 6.1

References

https://gist.github.com/Xandsz/2b409acb81e846fc3478600f984785a1
https://gist.github.com/Xandsz/2b409acb81e846fc3478600f984785a1

Products affected by CVE-2024-24507

Act-On » Act-On » Version: 2023

cpe:2.3:a:act-on:act-on:2023

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-24507

Products

Pricing

Contact Us